Dear community,
For the purposes of our client, we are required to enable power users* to be able to change the login ID (rep:principalName & rep:authorizableId) of registered users.
We are open to do a workaround since these are protected properties. Note that even creating a new user under the changed name was considered, but due to the inability to acquire the registered user's password (the UserManager** requires a password to create a user, and the power user is unaware of it), this idea was abandoned.
It would be great if you could share your ideas on how something like this can be done.
* - users that have jcr:all permissions for the registered users.
** - org.apache.jackrabbit.api.security.user.UserManager
